What is CVE-2026-8759?

CVE-2026-8759 is a high-severity vulnerability in Xiandafu Beetl, classified under Improper Input Validation. CVSS score: 7.3/10. Published 2026-05-17.

How severe is CVE-2026-8759?

High severity. CVSS v3 base score is 7.3 out of 10.

RCE in Xiandafu Beetl

CVE-2026-8759

A vulnerability was identified in xiandafu beetl up to 3.20.2. Affected is an unknown function of the file beetl-classic-integration/beetl-spring-classic/src/main/java/org/beetl/ext/spring/SpELFunction.java of the component SpELFunction. T…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.000 (7.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L.

Affected products

Xiandafu Beetl — versions 3.20.0, 3.20.1, 3.20.2

Weakness classification (CWE)

References

cna@vuldb.com (product, broken-link)
cna@vuldb.com (issue-tracking, exploit, broken-link)
cna@vuldb.com (third-party-advisory)
cna@vuldb.com (vdb-entry)
cna@vuldb.com (signature, permissions-required)

Frequently asked questions

What is CVE-2026-8759?: CVE-2026-8759 is a high-severity vulnerability in Xiandafu Beetl, classified under Improper Input Validation. CVSS score: 7.3/10. Published 2026-05-17.
How severe is CVE-2026-8759?: High severity. CVSS v3 base score is 7.3 out of 10.